About Me

Since the 1990s I have been very involved with fighting the military "don't ask don't tell" policy for gays in the military, and with First Amendment issues. Best contact is 571-334-6107 (legitimate calls; messages can be left; if not picked up retry; I don't answer when driving) Three other url's: doaskdotell.com, billboushka.com johnwboushka.com Links to my URLs are provided for legitimate content and user navigation purposes only.
My legal name is "John William Boushka" or "John W. Boushka"; my parents gave me the nickname of "Bill" based on my middle name, and this is how I am generally greeted. This is also the name for my book authorship. On the Web, you can find me as both "Bill Boushka" and "John W. Boushka"; this has been the case since the late 1990s. Sometimes I can be located as "John Boushka" without the "W." That's the identity my parents dealt me in 1943!

Friday, March 25, 2011

TOR and EFF report major breach with https CA's, possibly linked to Iran

Electronic Frontier Foundation has a story this morning about how a HTTPS/TLS certifying authority (CA) got duped into issuing phony certificates recently, apparently by hackers in Iran (probably connected to its government), which EFF warns threatened an “internet-wide security meltdown”, in a story March 23 by Peter Eckersley here.

EFF goes on to give some discussion of DNSSEC-PKI (link), and refers to questions about the underlying security of the domain name system, which erupted in a major security crisis in the middle of 2008.

It’s still very much an open subject.

HTTPS is absolutely essential to surfing and entering any passwords or personal information in a wireless environment.

Curiously,this morning, on my Windows 7 Pro machine, I had trouble getting to EFF from Google Chrome, but it worked in Mozilla, and on a nearby XP machine in Chrome. There could be a subtle issue with https, Windows 7 and Chrome together in some circumstances.

No comments:

Analytics

Privacy Policy

Privacy Policy for billsinternetsafety.blogspot.com

If you require any more information or have any questions about my privacy policy, please feel free to contact me by email at JBoushka@aol.com.

At billsinternetsafety.blogspot.com , the privacy of my visitors is of extreme importance to me. This privacy policy document outlines the types of personal information is received and collected by billsinternetsafety.blogspot.com and how it is used.

Log Files Like many other Web sites, billsinternetsafety.blogspot.com makes use of log files. The information inside the log files includes internet protocol ( IP ) addresses, type of browser, Internet Service Provider ( ISP ), date/time stamp, referring/exit pages, and number of clicks to analyze trends, administer the site, track user’s movement around the site, and gather demographic information. IP addresses, and other such information are not linked to any information that is personally identifiable.

Cookies and Web Beacons billsinternetsafety.blogspot.com does not use cookies.

DoubleClick DART Cookie

.:: Google, as a third party vendor, uses cookies to serve ads on billsinternetsafety.blogspot.com .
.:: Google's use of the DART cookie enables it to serve ads to your users based on their visit to billsinternetsafety.blogspot.com and other sites on the Internet.
.:: Users may opt out of the use of the DART cookie by visiting the Google ad and content network privacy policy at the following link.

Some of my advertising partners may use cookies and web beacons on my site. My advertising partners include ....... Google Adsense

These third-party ad servers or ad networks use technology to the advertisements and links that appear on billsinternetsafety.blogspot.com send directly to your browsers. They automatically receive your IP address when this occurs. Other technologies ( such as cookies, JavaScript, or Web Beacons ) may also be used by the third-party ad networks to measure the effectiveness of their advertisements and / or to personalize the advertising content that you see.

billsinternetsafety.blogspot.com has no access to or control over these cookies that are used by third-party advertisers.

You should consult the respective privacy policies of these third-party ad servers for more detailed information on their practices as well as for instructions about how to opt-out of certain practices. billsinternetsafety.blogspot.com 's privacy policy does not apply to, and we cannot control the activities of, such other advertisers or web sites.

If you wish to disable cookies, you may do so through your individual browser options. More detailed information about cookie management with specific web browsers can be found at the browsers' respective websites.